May 1, 2025 update
This commit is contained in:
Sharad Ahlawat
@ -13,7 +13,6 @@
|
||||
# references must include a dollar sign '$' in front of the
|
||||
# name to be expanded properly.
|
||||
#
|
||||
# $FreeBSD: releng/12.3/sbin/devfs/devfs.rules 338204 2018-08-22 15:55:23Z brd $
|
||||
#
|
||||
|
||||
# Very basic and secure ruleset: Hide everything.
|
||||
@ -87,6 +86,12 @@ add include $devfsrules_unhide_login
|
||||
add path fuse unhide
|
||||
add path zfs unhide
|
||||
add path 'bpf*' unhide
|
||||
add path 'md*' unhide
|
||||
add path 'md*' mode 0777
|
||||
|
||||
[devfsrules_jail_vnet=5]
|
||||
add include $devfsrules_jail
|
||||
add path pf unhide
|
||||
|
||||
# members of group uucp can access all usb and tty devices
|
||||
[usbrules=100]
|
||||
|
||||
@ -13,14 +13,13 @@
|
||||
# For a more detailed explanation of all the periodic.conf variables, please
|
||||
# refer to the periodic.conf(5) manual page.
|
||||
#
|
||||
# $FreeBSD: releng/12.3/usr.sbin/periodic/periodic.conf 370770 2021-10-07 19:46:04Z asomers $
|
||||
#
|
||||
|
||||
# What files override these defaults ?
|
||||
periodic_conf_files="/etc/periodic.conf /etc/periodic.conf.local"
|
||||
periodic_conf_files="/etc/periodic.conf /etc/periodic.conf.local ${_localbase}/etc/periodic.conf"
|
||||
|
||||
# periodic script dirs
|
||||
local_periodic="/usr/local/etc/periodic"
|
||||
# periodic script dirs. _localbase is being set in /usr/sbin/periodic
|
||||
local_periodic="${_localbase}/etc/periodic"
|
||||
|
||||
# Max time to sleep to avoid causing congestion on download servers
|
||||
anticongestion_sleeptime=3600
|
||||
@ -32,6 +31,7 @@ anticongestion_sleeptime=3600
|
||||
# that output. $daily_output might be set to /var/log/daily.log if you
|
||||
# wish to log the daily output and have the files rotated by newsyslog(8)
|
||||
#
|
||||
daily_diff_flags="-b -U 0" # flags for diff output
|
||||
daily_output="root" # user or /file
|
||||
daily_show_success="YES" # scripts returning 0
|
||||
daily_show_info="YES" # scripts returning 1
|
||||
@ -109,9 +109,6 @@ daily_accounting_compress="NO" # Gzip rotated files
|
||||
daily_accounting_flags=-q # Flags to /usr/sbin/sa
|
||||
daily_accounting_save=3 # How many files to save
|
||||
|
||||
# 330.news
|
||||
daily_news_expire_enable="YES" # Run news.expire
|
||||
|
||||
# 400.status-disks
|
||||
daily_status_disks_enable="NO" # Check disk status
|
||||
daily_status_disks_df_flags="-l -h" # df(1) flags for check
|
||||
@ -182,6 +179,11 @@ daily_scrub_zfs_pools="" # empty string selects all pools
|
||||
daily_scrub_zfs_default_threshold="35" # days between scrubs
|
||||
#daily_scrub_zfs_${poolname}_threshold="35" # pool specific threshold
|
||||
|
||||
# 801.trim-zfs
|
||||
daily_trim_zfs_enable="NO"
|
||||
daily_trim_zfs_pools="" # empty string selects all pools
|
||||
daily_trim_zfs_flags="" # zpool-trim(8) flags
|
||||
|
||||
# 999.local
|
||||
daily_local="/etc/daily.local" # Local scripts
|
||||
|
||||
@ -252,7 +254,7 @@ security_show_badconfig="NO" # scripts returning 2
|
||||
# These options are used by the security periodic(8) scripts spawned in
|
||||
# daily and weekly 450.status-security.
|
||||
security_status_logdir="/var/log" # Directory for logs
|
||||
security_status_diff_flags="-b -u" # flags for diff output
|
||||
security_status_diff_flags="-b -U 0" # flags for diff output
|
||||
|
||||
# Each of the security_status_*_period options below can have one of the
|
||||
# following values:
|
||||
@ -301,6 +303,7 @@ security_status_ipfdenied_period="daily"
|
||||
# 520.pfdenied
|
||||
security_status_pfdenied_enable="YES"
|
||||
security_status_pfdenied_period="daily"
|
||||
security_status_pfdenied_additionalanchors=""
|
||||
|
||||
# 550.ipfwlimit
|
||||
security_status_ipfwlimit_enable="YES"
|
||||
|
||||
Reference in New Issue
Block a user